PRESENTED BY
Cyber AI Chronicle
By Simon Ganiere · 15th February 2026
Welcome back!
Nation-state threat actors are no longer just experimenting with large language models - they're embedding them directly into their attack infrastructure. Groups linked to China, Iran, and North Korea are now using Google Gemini to accelerate malware development, automate reconnaissance, and generate phishing content that bypasses traditional detection methods.
As AI transitions from research tool to operational weapon in the cyber kill chain, the question becomes: can defenders adapt their detection capabilities fast enough to identify AI-generated artifacts before they're deployed at scale?
In today's AI recap:
If you have been enjoying the newsletter, it would mean the world to me if you could share it with at least one person 🙏🏼 and if you really really like it then feel free to offer me a coffee ☺️